Unrated severityNVD Advisory· Published May 28, 2024· Updated Feb 13, 2025

CVE-2024-23315

Description

A read-what-where vulnerability exists in the Programming Software Connection IMM 01A1 Memory Read functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can send an unauthenticated packet to trigger this vulnerability.

Affected products

Automationdirect/P3-550Ellm-fuzzy
Range: = 1.2.10.9
AutomationDirect/P3-550Ev5
Range: 1.2.10.9

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

community.automationdirect.com/s/internal-database-security-advisory/a4GPE0000003yZ72AI/sa00037mitre
talosintelligence.com/vulnerability_reports/TALOS-2024-1941mitre
www.talosintelligence.com/vulnerability_reports/TALOS-2024-1941mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000